Cisco Cisco ASA 5555-X Adaptive Security Appliance - No Payload Encryption Guia Da Instalação
38
Cisco ASA 5500 Migration to Version 8.3
OL-22176-01
Network and Service Object Migration
Network and Service Object Migration
This section describes network and service object migration and includes the following topics:
•
•
Supported Features for Objects
Version 8.3 introduces named network and service objects for use with the following features:
•
NAT—See the
for more information. You can no longer use a
named IP address (using the name command) in NAT.
•
Access lists—access-list command. You can no longer use a named IP address (using the name
command) in an access list.
command) in an access list.
•
Object groups—object-group network and object-group service commands. Named IP addresses
are still allowed in object groups, as well as network objects.
are still allowed in object groups, as well as network objects.
Object Migration
New network and service objects (the object network and object service commands) are substituted
into existing commands in the following cases:
into existing commands in the following cases:
•
For each network object NAT command, an object network command is created to represent the
real IP address that you want to translate.
real IP address that you want to translate.
•
When new nat commands require an object instead of an inline value, network and service objects
are automatically created.
are automatically created.
Error Message The nodnsalias option is deprecated. Use 'dns' option in nat command to enable/disable
dns rewrite.
dns rewrite.
Explanation
sysopt nodnsalias command not migrated. The sysopt nodnslias command is deprecated because the alias
command is no longer supported.
Recommended Action
Use the dns option in the new NAT commands to enable/disable DNS rewrite.
Example:
Old Configuration
sysopt nodnsalias
Migrated Configuration
Not migrated.
Table 14
NAT Migration Messages (continued)
Message and Description